Our popular Derived PIV/CAC credential solution enables true mobility for government organizations by providing secure, anywhere-anytime access to applications, work files and systems. Our complete offering includes deployment, user enrollment and credential management. It aligns with NIST SP 800-157 for compliance with the HSPD12/FIPS 201-2 Personal Identity Verification (PIV) requirements.
The Entrust Datacard derived PIV credential solution is fully integrated with leading EMM platforms. This enables an enhanced level of protection and policy control, plus a transparent user experience — there’s no longer any need to use OTPs. These integrations allow EMM vendor applications to use the derived PIV credential for strong user and device authentication prior to accessing resources.
Our mobile smart credential application is encoded like a PIV smart card, with a digital structure that adheres to PIV standards. This allows the mobile smart credential to be encoded with the same certificate types and use the same communication language traditionally used on physical PIV smart cards. Available for Apple iOS, Google Android and BlackBerry mobile operating systems.
A unique self-service module enables anywhere-anytime onboarding and credential management. After authorized users are granted access, they can request and manage derived PIV credentials remotely —without IT or administrative support. This reduces both operational costs and the need for enrollment kiosks.
Unlike PIV smartcards, PIN unblock and reset features are easily self-managed through our self-service module or directly on the user’s mobile device. There’s no need for a specialized kiosks. If policy does not allow for users to unlock or reset derived credential PINs, or if users lose their mobile devices, the self-service module allows for remote suspension or revocation of the old derived credential.
• QR code with password displayed
• QR code with password via encrypted email
• Email with password displayed
• Email with password via encrypted email
• Enabling access to certificate-enabled mobile applications for authentication directly through the mobile device – removing the need for username and password.
• Using the derived credential to provide logical access to a traditional workstation or laptop; similar to how a PIV smartcard is used for SCLO.
Request a demo with an IntelliTrust authentication platform specialist.
Experienced security professionals in corporations, banks and government agencies know the name IdentityGuard and trust it to protect and enable what matters to them.